30 matches found
claude-bug-bounty
Claude Bug Bounty Hunter The AI-native bug bounty framework...
This Week in Spring - January 26th, 2026
Hi, Spring fans! Welcome to another installment of This Week in Spring! As I write this, I cannot believe we're nearly at the end of the month! Time sure flies. Spring AI 2.0.0-M2 is available now Spring Modulith 2.1 M1, 2.0.2, and 1.4.7 released In last week's installment of A Bootiful Podcast ,...
CVE-2021-47844
Xmind 2020 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into mind mapping files or custom headers. Attackers can craft malicious files with embedded JavaScript that execute system commands when opened, enabling remote code execution through mous...
EUVD-2022-51914
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-1000069
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreePlane version 1.5.9 and earlier contains a XML External Entity XXE vulnerability in XML Parser in mindmap loader that can result in stealing data from...
CVE-2022-36677
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
CVE-2022-36677
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
CVE-2022-36677
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
CVE-2022-36677
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
Code injection
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
Obsidian Security Vulnerabilities
Obsidian is a knowledge base for native Markdown files from the Obsidian community. A security vulnerability exists in Obsidian Mind Map version v1.1.0, which stems from a vulnerability that allows an attacker to execute arbitrary code by injecting a crafted payload...
PT-2024-11600 · Obsidian · Obsidian Mind Map
Name of the Vulnerable Software and Affected Versions: Obsidian Mind Map version 1.1.0 Description: The issue allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document. Recommendations: For Obsidian Mind Map version 1.1.0, update to a version that contain...
CVE-2022-36677
Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...
CVE-2022-36677
CVE-2022-36677 : Obsidian Mind Map v1.1.0 is described as allowing arbitrary code execution via a crafted payload injected into an uploaded document. Multiple connected sources confirm this impact; the exact root cause is not detailed in the provided excerpts. CVSS v3.1 vectors suggest network at...
CVE-2023-30452
The MoroSystems EasyMind - Mind Maps plugin before 2.15.0 for Confluence allows persistent XSS when saving a Mind Map with the hyperlink parameter...
Cross site scripting
The MoroSystems EasyMind - Mind Maps plugin before 2.15.0 for Confluence allows persistent XSS when saving a Mind Map with the hyperlink parameter...
Mind-elixir Cross-site Scripting vulnerability
Mind-elixir is a free, open source mind map core. Prior to version 0.18.1, mind-elixir is prone to cross-site scripting when handling untrusted menus. This issue is patched in version 0.18.1...
GHSA-M22Q-97P5-79V2 Mind-elixir Cross-site Scripting vulnerability
Mind-elixir is a free, open source mind map core. Prior to version 0.18.1, mind-elixir is prone to cross-site scripting when handling untrusted menus. This issue is patched in version 0.18.1...
CVE-2021-32851
Mind-elixir Cross-site Scripting vulnerability (CVE-2021-32851) affects Mind-elixir core prior to version 0.18.1, where untrusted menu handling can lead to XSS. The issue is fixed in 0.18.1. Affected scope includes Mind-elixir versions before 0.18.1; remediation is to upgrade to 0.18.1 or later. ...
CVE-2022-4581
A vulnerability was found in 1j01 mind-map and classified as problematic. This issue affects some unknown processing of the file app.coffee. The manipulation of the argument html leads to cross site scripting. The attack may be initiated remotely. The name of the patch is...